Job opening: IT Cybersecurity Specialist (INFOSEC)
Salary: $117 962 - 181 216 per year
Published at: Jun 26 2024
Employment Type: Full-time
This announcement is issued under the Direct Hire Authority (DHA) to recruit for positions for which there is a critical hiring need. Selectee(s) will receive a career or career-conditional appointment in the competitive service and may be required to serve a one-year probationary period.
Who May Be Considered:
U.S. Citizens
Interagency/Career Transition Assistance Program (I/CTAP) eligibles
View common definitions of terms found in this announcement.
Duties
This is a shared job announcement across the Cybersecurity and Infrastructure Security Agency, with multiple participating divisions. Multiple positions may be filled from this announcement. These divisions include, but are not limited to:
Cybersecurity Division (CSD)
Emergency Communications Division (ECD)
Infrastructure Security Division (ISD)
Integrated Operations Division (IOD)
National Risk Management Center (NRMC)
Office of the Chief Information Officer (OCIO)
Office of the Chief Operations Support Officer (OCOSO)
Stakeholder Engagement Division (SED)
Typical work assignments include:
Oversee, lead, and manage development of methods to monitor and measure risk, compliance, and assurance efforts.
Oversee risk analysis, feasibility study, and/or trade-off analysis to develop, document, and refine functional requirements and specifications.
Oversee and define organizational cyber policy, programs, and guidelines for implementation.
Develop policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data.
Qualifications
To be considered minimally qualified for this position, you must demonstrate that you have the required experience for the respective grade level in which you are applying:
EXPERIENCE: Experience must be Information Technology (IT)-related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate.
You must have IT-related experience demonstrating each of the four competencies listed below:
GS-13
Attention to Detail - Thoroughness in monitoring all phases IT systems security.
Customer Service - Assessing the needs of cybersecurity stakeholders.
Oral Communication - Providing advice to IT stakeholders.
Problem Solving - Identifying cybersecurity problem areas and recommending solutions to fix problems
GS-14
Attention to Detail - Thoroughness in monitoring all phases IT systems security.
Customer Service - Assessing the needs of cybersecurity stakeholders.
Oral Communication - Serving as a technical expert and providing advice to IT stakeholders on policies impacting program needs.
Problem Solving - Identifying cybersecurity problem areas and recommending solutions to fix problems
AND
SPECIALIZED EXPERIENCE: In addition to meeting the qualification requirement listed above, you must have at least one year of specialized experience at the next lower GS-grade level (or equivalent). Specialized experience is experience that has equipped you with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT.
GS-13
You qualify for the GS-13 grade level if you have at least one (1) year of specialized experience at the GS-12 grade level (or equivalent) performing AT LEAST FOUR of the following duties:
Defining Information Technology (IT) and/or Cybersecurity related programs and projects; or
Developing Cybersecurity plans, strategy and policies to support and align with organizational Cybersecurity initiatives and regulatory compliance; or
Developing methods to monitor and measure risk, compliance, and assurance efforts; or
Managing the underlying information technology operational processes; or
Advocating for changes in policy that will support new initiatives or required changes/enhancements; or
Consulting with customers to evaluate functional requirements and translate functional requirements into technical solutions; or
Overseeing the development, implementation and evaluation of solutions for cybersecurity tools integration based on systems requirements, capabilities, and constraints to ensure the design meets customers' satisfaction; or
Managing the Information Technology (IT) planning process to ensure that developed solutions meet customer requirements.
GS-14
You qualify for the GS-14 grade level if you have at least one (1) year of specialized experience at the GS-13 grade level (or equivalent) performing AT LEAST FOUR of the following duties:
Leading development of methods to monitor and measure risk, compliance, and assurance efforts; or
Reviewing needs analysis to determine opportunities for new and improved business process solutions are relevant to the organization; or
Reviewing data (cyber and IT) to ensure they meet customer requirements; or
Administering policy guidance to cyber management, staff and users; or
Recommending the appropriate measures to internal and/or external Information Technology (IT) and/or Operational Technology (OT); or
Conducting risk and vulnerability assessments to protect IT/OT infrastructure assets and mitigate network vulnerabilities; or
Providing advisory services to leadership to ensure the proper operation of IT/OT systems throughout an organization; or
Providing technical expertise of current and evolving best practices in cybersecurity and the broader IT industry; or
Leading partnership meetings with external stakeholders.
Four out of eight specialized experience is REQUIRED and must be explicitly documented/described in your resume, or you will be disqualified from further consideration. Please describe duties you perform (not just knowledge, skills and abilities) as they relate to the specialized experience required for this position.
Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
All qualification requirements must be met by the closing date of this announcement.
Education
Some federal jobs allow you to substitute your education for the required experience in order to qualify. For this job, you must meet the qualification requirement using experience alone--no substitution of education for experience is permitted.
Contacts
- Address Cybersecurity and Infrastructure Security Agency
1616 Fort Myer Dr.
Arlington, VA 22209
US
- Name: CISA OCHCO Outreach & Employee Experience
- Email: [email protected]
Map